YellowFinTuna
2012-06-18, 12:52
Hello,
I'm running Windows XP Professional 32-bit (WXPp32) SP3 with all Windows Updates current. This computer is primarily used for gaming and became progressively slower and the useable diskspace appeared to be reducing depite not installing anything. I maintain a firewall but do not regularly check for malware. My dad ran AVG2012 free trial and we discovered that we had five (5) rootkits installed. AVG2012 attempted to remove them when they were named SPBP.SYS but now a new variant SPXZ.SYS has appeared, apparently hooked into atapi.sys.
HARDWARE
NVIDIA GeForce 9800 GT video card
3 * physical HDD (4 partitions)
4 GB physical RAM
Note that I am also running Daemon tools to establish virtual drives. I understand that some of the methods DT uses are similar in process to
rootkit establishment.
I have run ERUNT.
I am still running AVG2012 within the 30 day trial period. Rootkits are still being found. I am minimising my time on the net and considering a clean install of the system partition. Please advise.
ATTACHMENTS
DDS.txt (Attach_txt.zip not attached)
20120618A-AVG-Details-Rootkits-2.jpg (AVG screenshot)
QUESTIONS:
[1] Can you please help rid my PC of the rootkits ?
[2] Can you please advise of the usefulness of a clean install of WXPp32 ?
Thank you very much (in advance),
YellowFinTuna
I'm running Windows XP Professional 32-bit (WXPp32) SP3 with all Windows Updates current. This computer is primarily used for gaming and became progressively slower and the useable diskspace appeared to be reducing depite not installing anything. I maintain a firewall but do not regularly check for malware. My dad ran AVG2012 free trial and we discovered that we had five (5) rootkits installed. AVG2012 attempted to remove them when they were named SPBP.SYS but now a new variant SPXZ.SYS has appeared, apparently hooked into atapi.sys.
HARDWARE
NVIDIA GeForce 9800 GT video card
3 * physical HDD (4 partitions)
4 GB physical RAM
Note that I am also running Daemon tools to establish virtual drives. I understand that some of the methods DT uses are similar in process to
rootkit establishment.
I have run ERUNT.
I am still running AVG2012 within the 30 day trial period. Rootkits are still being found. I am minimising my time on the net and considering a clean install of the system partition. Please advise.
ATTACHMENTS
DDS.txt (Attach_txt.zip not attached)
20120618A-AVG-Details-Rootkits-2.jpg (AVG screenshot)
QUESTIONS:
[1] Can you please help rid my PC of the rootkits ?
[2] Can you please advise of the usefulness of a clean install of WXPp32 ?
Thank you very much (in advance),
YellowFinTuna